The ELK stack consists of three core components: ElasticSearch, LogStash, and Kibana and is used for logging analytics and mechanics.
LogStash is used for data collection and transformation, taking information from multiple sources and parsing and enriching the data before sending to a destination such as ElasticSearch.
This data can then be explored and analysed via the user-friendly web interface, Kibana, which offers graphs, dashboards and visualization tools.
In the second part of the series, the author plans to look at installing the ELK agents and the configuration of LogStash, before concluding with setting up integrations and additional configurations.
This is intended to provide a comprehensive step-by-step guide for installing and configuring the ELK stack.